CVE-2022-31249

2023-02-07T13:15:00

Description

A Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in wrangler of SUSE Rancher allows remote attackers to inject commands in the underlying host via crafted commands passed to Wrangler. This issue affects: SUSE Rancher wrangler version 0.7.3 and prior versions; wrangler version 0.8.4 and prior versions; wrangler version 1.0.0 and prior versions.

Affected Software

CPE Name	Name	Version
suse:wrangler	suse wrangler	1.0.0
suse:wrangler	suse wrangler	0.7.4
suse:wrangler	suse wrangler	0.8.5

{"id": "CVE-2022-31249", "vendorId": null, "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2022-31249", "description": "A Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in wrangler of SUSE Rancher allows remote attackers to inject commands in the underlying host via crafted commands passed to Wrangler. This issue affects: SUSE Rancher wrangler version 0.7.3 and prior versions; wrangler version 0.8.4 and prior versions; wrangler version 1.0.0 and prior versions.", "published": "2023-02-07T13:15:00", "modified": "2023-02-15T01:49:00", "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {"cvssV3": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL"}, "exploitabilityScore": 3.9, "impactScore": 5.9}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-31249", "reporter": "security@suse.com", "references": ["https://bugzilla.suse.com/show_bug.cgi?id=1200299"], "cvelist": ["CVE-2022-31249"], "immutableFields": [], "lastseen": "2023-02-15T06:33:05", "viewCount": 26, "enchantments": {"dependencies": {"references": [{"type": "github", "idList": ["GHSA-QRG7-HFX7-95C5"]}, {"type": "osv", "idList": ["OSV:GHSA-QRG7-HFX7-95C5", "OSV:GO-2023-1519"]}, {"type": "veracode", "idList": ["VERACODE:39095"]}]}, "score": {"value": 4.5, "vector": "NONE"}, "affected_software": {"major_version": [{"name": "suse wrangler", "version": 1}, {"name": "suse wrangler", "version": 0}, {"name": "suse wrangler", "version": 0}]}, "epss": [{"cve": "CVE-2022-31249", "epss": "0.001470000", "percentile": "0.489510000", "modified": "2023-03-20"}], "vulnersScore": 4.5}, "_state": {"dependencies": 1676443067, "score": 1676443337, "affected_software_major_version": 1677387694, "epss": 1679355295}, "_internal": {"score_hash": "df5bbdddaf43ce6d7d4d533e94ae55e9"}, "cna_cvss": {"cna": "SUSE", "cvss": {"3": {"vector": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", "score": 7.5}}}, "cpe": ["cpe:/a:suse:wrangler:1.0.0"], "cpe23": ["cpe:2.3:a:suse:wrangler:1.0.0:*:*:*:*:*:*:*"], "cwe": ["CWE-78"], "affectedSoftware": [{"cpeName": "suse:wrangler", "version": "1.0.0", "operator": "eq", "name": "suse wrangler"}, {"cpeName": "suse:wrangler", "version": "0.7.4", "operator": "lt", "name": "suse wrangler"}, {"cpeName": "suse:wrangler", "version": "0.8.5", "operator": "lt", "name": "suse wrangler"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"operator": "OR", "children": [], "cpe_match": [{"vulnerable": true, "cpe23Uri": "cpe:2.3:a:suse:wrangler:1.0.0:*:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:suse:wrangler:0.7.4:*:*:*:*:*:*:*", "versionEndExcluding": "0.7.4", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:suse:wrangler:0.8.5:*:*:*:*:*:*:*", "versionStartIncluding": "0.8.0", "versionEndExcluding": "0.8.5", "cpe_name": []}]}]}, "extraReferences": [{"url": "https://bugzilla.suse.com/show_bug.cgi?id=1200299", "name": "https://bugzilla.suse.com/show_bug.cgi?id=1200299", "refsource": "CONFIRM", "tags": ["Issue Tracking"]}], "product_info": [{"vendor": "SUSE", "product": "Rancher"}]}

{"github": [{"lastseen": "2023-02-23T17:07:34", "description": "### Impact\n\nA command injection vulnerability was discovered in Wrangler's Git package affecting versions up to and including `v1.0.0`.\n\nWrangler's Git package uses the underlying Git binary present in the host OS or container image to execute Git operations. Specially crafted commands can be passed to Wrangler that will change their behavior and cause confusion when executed through Git, resulting in command injection in the underlying host.\n\n### Workarounds\n\nA workaround is to sanitize input passed to the Git package to remove potential unsafe and ambiguous characters. Otherwise, the best course of action is to update to a patched Wrangler version.\n\n### Patches\n\nPatched versions include `v1.0.1` and later and the backported tags - `v0.7.4-security1`, `v0.8.5-security1` and `v0.8.11`.\n\n### For more information\n\nIf you have any questions or comments about this advisory:\n\n* Reach out to [SUSE Rancher Security team](https://github.com/rancher/rancher/security/policy) for security related inquiries.\n* Open an issue in [Rancher](https://github.com/rancher/rancher/issues/new/choose) or [Wrangler](https://github.com/rancher/wrangler/issues/new) repository.\n* Verify our [support matrix](https://www.suse.com/suse-rancher/support-matrix/all-supported-versions/) and [product support lifecycle](https://www.suse.com/lifecycle/).", "cvss3": {"exploitabilityScore": 3.9, "cvssV3": {"baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "baseScore": 9.8, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1", "userInteraction": "NONE"}, "impactScore": 5.9}, "published": "2023-01-25T19:40:43", "type": "github", "title": "Command injection in Git package in Wrangler", "bulletinFamily": "software", "cvss2": {}, "cvelist": ["CVE-2022-31249"], "modified": "2023-02-23T16:36:07", "id": "GHSA-QRG7-HFX7-95C5", "href": "https://github.com/advisories/GHSA-qrg7-hfx7-95c5", "cvss": {"score": 0.0, "vector": "NONE"}}], "veracode": [{"lastseen": "2023-02-18T00:41:11", "description": "github.com/rancher/wrangler is vulnerable to Command Injection attacks. An attacker is able to change the library's behavior and cause confusion when a specially crafted command is executed through Git, because it uses the underlying Git binary present on the host OS or container image.\n", "cvss3": {"exploitabilityScore": 3.9, "cvssV3": {"baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "baseScore": 9.8, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1", "userInteraction": "NONE"}, "impactScore": 5.9}, "published": "2023-02-03T06:24:46", "type": "veracode", "title": "Command Injection", "bulletinFamily": "software", "cvss2": {}, "cvelist": ["CVE-2022-31249"], "modified": "2023-02-15T07:10:51", "id": "VERACODE:39095", "href": "https://sca.analysiscenter.veracode.com/vulnerability-database/security/1/1/sid-39095/summary", "cvss": {"score": 0.0, "vector": "NONE"}}], "osv": [{"lastseen": "2023-02-08T23:11:24", "description": "### Impact\n\nA command injection vulnerability was discovered in Wrangler's Git package affecting versions up to and including `v1.0.0`.\n\nWrangler's Git package uses the underlying Git binary present in the host OS or container image to execute Git operations. Specially crafted commands can be passed to Wrangler that will change their behavior and cause confusion when executed through Git, resulting in command injection in the underlying host.\n\n### Workarounds\n\nA workaround is to sanitize input passed to the Git package to remove potential unsafe and ambiguous characters. Otherwise, the best course of action is to update to a patched Wrangler version.\n\n### Patches\n\nPatched versions include `v1.0.1` and later and the backported tags - `v0.7.4-security1`, `v0.8.5-security1` and `v0.8.11`.\n\n### For more information\n\nIf you have any questions or comments about this advisory:\n\n* Reach out to [SUSE Rancher Security team](https://github.com/rancher/rancher/security/policy) for security related inquiries.\n* Open an issue in [Rancher](https://github.com/rancher/rancher/issues/new/choose) or [Wrangler](https://github.com/rancher/wrangler/issues/new) repository.\n* Verify our [support matrix](https://www.suse.com/suse-rancher/support-matrix/all-supported-versions/) and [product support lifecycle](https://www.suse.com/lifecycle/).", "cvss3": {}, "published": "2023-01-25T19:40:43", "type": "osv", "title": "Command injection in Git package in Wrangler", "bulletinFamily": "software", "cvss2": {}, "cvelist": ["CVE-2022-31249"], "modified": "2023-02-08T22:37:02", "id": "OSV:GHSA-QRG7-HFX7-95C5", "href": "https://osv.dev/vulnerability/GHSA-qrg7-hfx7-95c5", "cvss": {"score": 0.0, "vector": "NONE"}}, {"lastseen": "2023-02-14T19:53:27", "description": "A command injection vulnerability exists in the Wrangler Git package. Specially crafted commands can be passed to Wrangler that will change their behavior and cause confusion when executed through Git, resulting in command injection in the underlying host.\n\nA workaround is to sanitize input passed to the Git package to remove potential unsafe and ambiguous characters. Otherwise, the best course of action is to update to a patched Wrangler version.", "cvss3": {}, "published": "2023-02-14T19:34:35", "type": "osv", "title": "GO-2023-1519", "bulletinFamily": "software", "cvss2": {}, "cvelist": ["CVE-2022-31249"], "modified": "2023-02-14T19:34:35", "id": "OSV:GO-2023-1519", "href": "https://osv.dev/vulnerability/GO-2023-1519", "cvss": {"score": 0.0, "vector": "NONE"}}]}

CVE-2022-31249

Description

Affected Software

Related